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TITLE OF THE INVENTION 

GROUP-BROWSING SYSTEM 

CROSS-REFERENCE TO RELATED APPLICATIONS 
This application is related to and claims priority to U.S. Provisional Patent 
Application Serial No. 60/180,589, filed February 7, 2000. The contents of that application 
are incorporated herein by reference. 

BACKGROUND OF THE INVENTION 

Field of the Invention 

The present invention generally relates to an internet group-browsing system that 
allows multiple users to interact with web pages together. 

Discussion of the Background 

Internet users typically use a web-browser to "surf ' the Internet. A browser is a 
special-purpose application program that effects requests of web pages and the display of a 
requested web page. It allows users to surf the Internet by moving from one World Wide 
Web (WWW) site to another. Information on providing Web services is provided in the 
following references which are incorporated herein by reference: (1) Visual Studio Core 
Reference Set, by Microsoft Press, (2) Visual InterDev 6.0: Web Technologies Reference, by 
Microsoft Press, (3) Professional Active Server Pages 2.0 by Francis et al., published by 
WROX Press Ltd., (4) Oracle PL/SQL Programming by Scott Urman, Published: March 
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1996, (5) Hitchhikers Guide to Visual Basic and SQL Server: with CD-ROM, by William 
Vaughn, Published: May 1997, (6) Using Microsoft SQL Server 6.5 (Special Edition) by 
Stephen Wynkoop, Published: March 1997, and (7) Advanced PowerBuilder 6 Techniques by 
Ramesh Chandak. 

Each individual who is web-browsing typically interacts individually with a given 
web site. Therefore, when one individual is web-browsing, other Internet users at remote 
locations are unable to have the same experience or see what that individual is doing on a 
requested web site. For example, a person who is shopping on-line via a company's web site 
is unable to have a remotely located friend shop with him/her. 

Web group-browsing allows multiple users to "surf the Internet together and to 
experience the same web sites simultaneously by enabling those individuals to scroll through 
a web site's pages together. For example, two people at remote locations can now shop for 
clothes together on a company's web site. The shopping experience, however, bears little 
resemblance to a real world group shopping experience due to several existing technological 
limitations (e.g., privacy, personalization, and the inability of clients group-browsing together 
to communicate with each other). 

Some web sites enable users to "personalize" or customize web pages on the site by 
(1) indicating preferences or (2) entering personal information. As a result, such users may 
be provided with personalized services (e.g., "one click shopping" shopping service currently 
provided by Amazon.com). 

One implementation technique for personalization utilizes cookies. Cookies reside on 
each user's local computer to be used as personal identifiers sent together with a Uniform 
Resource Locator (URL) requests. To view a specific web page, a client computer system 
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specifies the URL for that web page in a request. This request is forwarded to the web server 
that supports that web page. When that web server receives the request, it sends that web 
page to the client computer system. When the client computer system receives that web page, 
it typically displays the web page using a browser. Cookies can be classified as "persistent 
cookies, " which are stored on users' hard drives, and "session cookies," which are stored in 
the memory and are only valid during a particular browsing session. Since cookies enable 
web sites to display personalized information (e.g., personal preferences, names, addresses, 
telephone numbers, credit card numbers), it is highly undesirable to allow one user's cookies 
to be accessed by another user without authorization. As such, personalization impacts 
privacy. 

Different approaches have been taken to deal with personalization and privacy issues. 
The first approach is to confine all users to group-browse within one or a few sites that 
integrate group-browsing services, which address all personalization and privacy issues 
specific to those sites. However, because the group-browsing experience is limited to a few 
selected and customized sites, this approach is not a generalized service for sharing 
web-surfing experiences. As such, known group-browsing systems are specific to the web 
site visited and, as such, users have different group-browsing experiences at different web 
sites. 

The second approach is to prevent users from sharing form data that is sent in a POST 
command. This approach has been used by Cahoots and SideTalk who designed web tour 
services. Such POST data is exists in some personalized web pages requiring login or 
automatic login. Thus, the second approach unduly limits group-browsing because it does 
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not allow group-browsers to access pages/requiring POST data. Furthermore, such services 
limit group-browsing to a single "in-control" party, decreasing the sense of a shared activity. 

The third approach is to place the burden of privacy on the users. If one of the users 
logs into his or her personalized web page during a group-browsing session, this user will 
receive a cookie from the web site. This personal cookie will be shared by all users in the 
same session because they will submit the same URL requests to the web site. The user may 
not, however, be aware that his personal cookie is being shared. There are two primary 
shortcomings to this approach. First, the shared cookie becomes a persistent cookie on 
someone else's computer, allowing other users to access and use the cookie owner's personal 
information. Second, the personal persistent cookies of other users in the session may be 
replaced without acknowledgment. With replaced cookies, users will not enjoy the same 
personalized pages they expected even if they are not in group-browsing sessions. 

SUMMARY OF THE INVENTION 

Accordingly, one object of the present invention is to allow clients to group-browse 
without confining the users to sites that integrate group-browsing services. 

It is a further object of the present invention to allow group-browsing clients to share 
personalized web pages without sharing any confidential information. 

It is another object of the present invention to allow group-browsing clients to share 
their personalized web pages without permanently leaving their personal cookies on other 
users' computers. 

It is a further object of the present invention to allow group-browsing clients to shop 
together, but also to make separate purchases. 
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Each of the above objects is separate and need not be addressed by every embodiment 
described herein or every claim. Accordingly, one embodiment addresses at least one of the 
above objectives by providing a group-browsing system that masks the identity of each client 
computer to prevent web sites from retrieving any client's actual identification information 
(e.g., in the form of a cookie) that is not part of a group browsing session. Nonetheless, the 
group browsing system may create a temporary identifier (e.g., temporary cookie) for use by 
each client in a group during a group browsing session so that when each such client logs on 
to a web site the same web page is displayed for all the clients in the group. At the end of a 
group-browsing session, the temporary identifiers are automatically discarded to prevent any 
user from returning to the web site while masquerading as another client. 

According to one embodiment, the actions of all the clients may be tracked 
collectively (e.g., for billing purposes). 

BRIEF DESCRIPTI ON OF THE DRAWINGS 
A more complete appreciation of the invention and many of the attendant advantages 
thereof will be readily obtained as the same becomes better understood by reference to the 
following detailed description when considered in connection with the accompanying 
drawings, wherein: 

Figure 1 is a schematic illustration of a computer for implementing either a client-side 
environment for a group-browsing session or a server-side environment for controlling a 
group-browsing session or its clients; 

Figure 2A is a screenshot of an exemplary interface for authenticating a user to a 
server-side environment for controlling a group-browsing session; 
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Figure 2B is a schematic illustration of an authentication request by user B in 
preparation for a group-browsing session; 

Figure 2C is a schematic illustration of (1) an authentication reply to user B and (2) a 
notice to all other users that have registered an interest in knowing when user B has logged 
on; 

Figure 2D is a screenshot of an exemplary interface for creating or controlling a 
client-side environment for a group-browsing session after user authentication; 

Figure 3 A is a screenshot of an exemplary dialog box for adding users to the interface 
of Figure 2 in response to selecting the add button on the interface of Figure 2; 

Figure 3B is a screenshot of an exemplary interface for searching for users in response 
to selecting the search button on the dialog box of Figure 3 A; 

Figures 4A and 4B are exemplary screenshots of the interface of Figure 2 after one 
and three users have been added, respectively; 

Figure 5 A is a screenshot of an exemplary dialog box for inviting one of the users 
listed in the interface of Figure 4B to join in a group-browsing session; 

Figure 5B is a screenshot of an exemplary dialog box for accepting the invitation of 
another user; 

Figure 5C is a schematic illustration of a first user requesting that a second user join a 
group-browsing session using a pure client-server model; 

Figure 5D is a schematic illustration of a first user requesting that a second user join a 
group-browsing session using a hybrid client-server/peer-to-peer model; 

Figure 5E is a schematic illustration of client-side environments having been spawned 
as a result of at least two users forming a group-browsing session; 
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Figure 6 is a screenshot of an exemplary three part display that is generated after a 
user accepts an invitation to begin a group-browsing session; 

Figure 7 is a screenshot of an exemplary chat box in which a local user has received a 
message from a remote user after beginning a group-browsing session; 

Figure 8A is a schematic illustration of a request from user A that causes the display 
of users A and B to be updated; 

Figure 8B is a screenshot of a result of a request to have the group view a new page; 

Figure 9 is a screenshot of an exemplary warning dialog indicating that sensitive data 
should not be shared; 

Figure 1 0 is a screenshot of an exemplary dialog box indicating that a group-browsing 
session is about to be ended; 

Figure 1 1 A is a screenshot of an exemplary dialog box indicating that group-browsing 
session has ended; 

Figure 1 IB is an exemplary code excerpt showing how cookies are handled upon 
termination of a group browsing session; 

Figure 12 is a screenshot of an exemplary dialog box for sending messages between 
users; :? 

Figures 13-16 are exemplary screenshot of configuration dialog boxes; 

Figure 17 is a screenshot of an exemplary warning dialog box; and 

Figure 1 8 is a flow diagram of a general operation of a method of the present 
invention. 
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PET AILED DESCRIPTION OF THJE PREFERRED EMBODIMENT 
Referring now to the drawings, wherein like reference numerals designate identical or 
corresponding parts throughout the several views, Figure 1 is a schematic illustration of a 
computer system for implementing either a client-side environment for a group-browsing 
session or a server-side environment for controlling a group-browsing session or its clients. 
A computer 1 00 implements the method of the present invention, wherein the computer 
housing 102 houses a motherboard 104 which contains a CPU 106, memory 108 (e.g., 
DRAM, ROM, EPROM, EEPROM, SRAM, SDRAM, and Flash RAM), and other optional 
special purpose logic devices (e.g., ASICs) or configurable logic devices (e.g., GAL and 
reprogrammable FPGA). The computer 100 also includes plural input devices, (e.g., a 
keyboard 122 and mouse 124), and a display card 1 10 for controlling monitor 120. In 
addition, the computer system 100 further includes a floppy disk drive 1 14; other removable 
media devices (e.g., compact disc 1 19, tape, and removable magneto-optical media (not 
shown)); and a hard disk 1 12, or other fixed, high density media drives, connected using an 
appropriate device bus (e.g., a SCSI bus, an Enhanced IDE bus, or a Ultra DMA bus). Also 
connected to the same device bus or another device bus, the computer 1 00 may additionally 
include a compact disc reader 1 18, a compact disc reader/writer unit (not shown) or a 
compact disc jukebox (not shown). Although compact disc 1 19 is shown in a CD caddy, the 
compact disc 119 can be inserted directly into CD-ROM drives which do not require caddies. 
In addition, a printer (not shown) also provides printed listings of web sites visited in a group- 
browsing session. 

As stated above, the system includes at least one computer readable medium. 
Examples of computer readable media are compact discs 119, hard disks 112, floppy disks, 
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tape, magneto-optical disks, PROMs (EPROM, EEPROM, Flash EPROM), DRAM, SRAM, 
SDRAM, etc. Stored on any one or on a combination of computer readable media, the 
present invention includes software for controlling both the hardware of the computer 100 
and for enabling the computer 100 to interact with a human user. Such software may include, 
but is not limited to, device drivers, operating systems and user applications, such as 
development tools. Such computer readable media further includes the computer program 
product of the present invention for implementing either a client-side environment for a 
group-browsing session or a server-side environment for controlling a group-browsing 
session or its clients. The computer code devices of the present invention can be any 
interpreted or executable code mechanism, including but not limited to scripts, interpreters, 
dynamic link libraries, Java classes, and complete executable programs. Moreover, the 
computer code devices may be received (e.g., downloaded) dynamically across a Wide Area 
Network (e.g., the Internet) prior to execution or interpretation. The number of functions 
performed by any one computer code device is a matter of design choice in light of the 
teachings herein. For example, the proxy 70, the group browser 65, and the group browser 
controller 60 (discussed below) may implemented as one or more components in one or more 
applications. For example, the group browser controller 60 and the proxy 70 may simply be 
two threads of control within the same program or may be two separate programs. Likewise, 
the group browser controller 60 or the proxy 70 may be integrated into the group browser 65. 

Using at least one computer code device on a client-side computer, a user is prompted 
to authenticate himself/herself (e.g., using a dialog box as shown in Figure 2A). In one 
embodiment, a user sends a username and password to a coordination server 1 2 (discussed 
below), where the username and password are compared against entries accessible by the 
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coordination server. Such entries may be stored in files, databases or other data repositories. 
In an alternate embodiment, tokens or time synchronized control words are utilized for 
authentication. 

As shown in Figure 2B, a single user (i.e., user A) has been authenticated to the 
coordination server 12. User A is currently browsing web pages in a non-shared mode since 
no other users have been authenticated. The non-shared browser has access to all permanent 
cookies maintained on the system as well as any session cookies generated within the session. 
Later, user B sends an authentication request to the coordination server 12. As shown in 
Figure 2C, if the authentication information is correct, then user B is sent the status of the 
other users that he/she has requested information on. Contemporaneously, any users that 
have registered an interest in user A's status a likewise notified. (As would be appreciated by 
one of ordinary skill in the art, the status information may be pulled by remote users 
periodically rather than pushed.) 

Once user B has been authenticated to the coordination server 12, user B receives 
back the status of selected group-browsing members. If user B has not requested information 
any other users, the list is initially empty. An exemplary interface 200 is shown in Figure 2D. 
That interface includes a title bar with a close button 202, a help button 205 and a 
minimization button 210. The interface 200 also includes a settings button 215, a mail button 
220, a group-browsing invitation button 225 and a user add button 230 for controlling the 
interface 200. The interface also includes a scrollable list area 240 for listing other users and 
the statuses. 

Since the user B cannot group-browse by himself, the user may select the user add 
button 230 to receive the user add dialog 250 shown in Figure 3 A. The user may either enter 
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a known name in the text entry box, cancel the addition, or search for another user using a 
separate interface. One embodiment of the search interface is a web page as shown in Figure 
3B. Other search interfaces are also possible (e.g., image searches or voice searches). One 
such voice search utilizes a computer microphone to couple voice input to a voice recognition 
unit. The recognition unit may be local or remote (e.g., at the other end of an Internet 
telephony connection). 

An exemplary result of adding a first user is shown in Figure 4A. After adding two 
additional users, and exemplary interface 200 includes three possible users to choose from, as 
shown in Figure 4B. 

Once users have been added to the interface 200, at least one user may be selected 
from the list area 240 as shown in Figure 5A. By then selecting the group-browsing 
invitation button 225, the users selected in the list 240 may be sent a message (optionally 
including text) inviting them to join a group-browsing session. Such an invitation may be 
made using a message dialog 260. In the example, Ikena02 is inviting IkenaOl to a group- 
browsing session. 

Similarly, as shown in Figure 5B, user Ikena02 is being invited by user Ikena03 to 
join in a browsing session. No other users are yet in the group. The user may either join the 
group using button 262 or decline using button 264. The invitation process is shown 
schematically in Figure 5C for a pure client-server model. Instead of passing the "join" 
request through the coordination server 12, user B may instead request the location of user A 
and then pass the "join" request directly to user A, as shown in Figure 5D. In either 
embodiment, once the join request has been accepted, the group browser controller 60 on 
each local machine spawns the rest of the client-side environment for group browsing. As 
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shown in Figure 5E, that environment includes a group browser 65 (e.g., Internet Explorer 
5.X). In one embodiment, the environment also includes a proxy 70 that acts as a gatekeeper 
for preventing personal information from being disclosed in a group-browsing session. 
Preferably, at the start of a group-browsing session, access to previously stored cookies by the 
group browser is disabled for the duration of the group-browsing session to avoid having 
personal information (accessible by the cookies) be distributed to others in the group 
browsing session. (Non-shared browsers continue to have access to the permanently stored 
cookies since the URL requests of the non-shared browsers are not passed between users.) 

After the client-side environments have been created, a first page shared is displayed 
by sending messages from the group browser controllers 60 to the group browsers 65. An 
exemplary display environment is shown in Figure 6. That environment includes an interface 
310 generated by a group browser 65, the interface 200 extended with an on-line toolbar 300, 
and a chat interface 320 for sending and receiving messages from other members of the 
group. In one embodiment, the initial page to be displayed is selected by the coordination 
server and communicated to each of the group browser controllers 60. In another 
embodiment, the initial page to be displayed is selected by one of the group browser 
controllers 60 and communicated to the other group browser controllers 60, either directly or 
via coordination controller 12. Communication between the group browser controllers 60 
and the group browsers 65 preferably conforms to the DWebBrowserEvents2 interface and 
the IwebBrowser2 interface. Those interfaces are published by Microsoft Corporation and 
are incorporated herein by reference in their entirety. 
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As shown in Figure 7, the chat interface 320 can be used to send messages from one 
user to another. Preferably, the identify of the sending user prefaces the message displayed in 
the text area 325. 

Once the client-side environments are running, either user may select a navigational 
control (e.g., the back button, the forward button, the home button, or a history list) or enter 
an address in the address box to request a group browser 65 to change displayed pages. As 
shown in Figure 8A, User A generates selects a new URL to be displayed on the group 
browser 65. This selection sets off two information exchange sequences (labeled 1-4 and T- 
8 1 , respectively). In the first information exchange, the URL information (including any 
POST data and cookies) is sent to the group browser controller 60 in the form of a page 
change message (either before or after the page is actually received according to the second 
information exchange). As would be understood by one of ordinary skill in the art, if user A 
is unable to reach the new URL, it may be preferable that the page change message not be 
sent to the group browser controller 60. On the other hand, in an alternate embodiment, the 
page change message is sent even if the user A cannot change to the new URL. 

In order to distinguish between a locally initiated URL request (1) arriving at a proxy 
70A of a user A and a remotely initiated URL request (5') arriving at a proxy 70B of user B, 
in one embodiment, the group browser controller 60A adds information (e.g., a key/value 
pair) to the URL information prior to forwarding the URL information to user B. This 
enables the proxy server 70B to perform cookie management. In an alternate embodiment, 
the additional information can be added by the group browser 60B upon the arrival of the 
URL request at user B's machine. 
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Utilizing the information exchange sequences of Figure 8 A, it is possible to move 
from the page of Figure 6 to a new page. Figure 8B illustrates the result of user A selecting 
to go to the Patent Office's main page. 

An important part of the process of Figure 8 A is the transmission of the POST data 
and cookies between machine. This enables multiple users to browse in an on-line book 
store, and have the books be added to everyone's cart (because they share a common 
temporary cookie). The sharing of cookies, however, can be dangerous if the cookies are 
used to access sensitive information. Often such sensitive information is further protected by 
utilizing a secure connection (e.g., an https connection) between a browser and a server. 
Accordingly, in one embodiment of the present invention, attempts to utilize a secure 
connection are tracked in the proxy 70, and such attempts are blocked for the user's sake. In 
one such embodiment, a warning message, as shown in Figure 9, is generated by the proxy 
and sent back to the browser for display. In such a case, either (1) the group browser 
controller 60 A blocks a page change request message from being sent to the group browser 
controller 60B or (2) the message is sent but the proxy 70B prevents user B from accessing 
the page either. 

In an alternate embodiment, attempts to access secure content cause a warning 
message to be sent to the user. That warning identifies the danger of sharing sensitive 
information and allows the user the opportunity to cancel the request for secure information. 
In such an embodiment, cookies stored before the start of a group browser session can also be 
used with the same type of warning. 

In yet another embodiment, attempts to access secure content cause a non-shared 
browser to be spawned on the local machine and future uses of that cookie by other users is 
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prevented via the proxies. Moreover, since a non-shared browser is then used, the 
information is only displayed to a single user. In this way, a series of users can add items to a 
shopping cart together, and then one user can perform the checkout while ensuring that the 
other users do not see the added credit card or personal information. 

In the event that a user selects to leave a session (e.g., instead of sharing sensitive data 
or because a user has selected quit), the present invention gives the user a chance to ensure 
that is what the user really intended. As shown in Figure 10, a dialog box 330 notifies the 
user of the consequences of the action. 

As shown in Figure 1 1 A, other users are notified if a dialog box 340 if the group 
browsing session has been terminated by one of the users. Since the termination is not 
reversible, the user is only provided with an okay button. As a result, in an embodiment that 
utilizes a proxy to maintain cookies, the cookies of the group browsing session must be 
cleaned up. An exemplary routine for performing cleanup is shown in Figure 1 IB. 

It is not always possible or desirable to start a group browsing session just to tell 
another user something. Accordingly, using the mail button 220, a user may send a message 
to another user without selecting the "Send as an invitation to cobrowse" checkbox. In such a 
case, the dialog box 260 is simply used to input a message to be sent to the remote user. As 
shown in Figure 12, the user Ikena02 has selected to send a message to IkenaOl using dialog 
box 260. 

Using the settings button 215, the interface 200 may be configured in various ways. 
Four exemplary tabs are shown in the dialog box 270 in Figure 13. The selected tab is the 
client tab, and the user is enabled to select any of the options illustrated. The user is similarly 
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able to select options displayed in the profile dialog box 280, the chat dialog box 290, and the 
lists dialog box 295 in Figures 14-16, respectively. 

When a user is ready to completely quit the system, rather than just a session, the user 
is preferably warned of the consequence, as shown in Figure 17. 

As described herein, a portion of the responsibility of the proxy 70 is to manage 
cookies between the users of a group. Although a group browsing session preferably starts 
with no cookies, cookies can be added during the group browsing session. According to one 
embodiment of the present invention, the proxy runs trigger routine computer code to manage 
cookies. An exemplary trigger routine computer code and cookie manager computer code are 
attached hereto in Appendix I. This prevents any client's actual identification information 
(i.e., personal information created before the group browsing session) from being disclosed. 
Furthermore, the proxies 70A and 70B are configured to create the same temporary identifier 
for each client when any client logs on to the web site so that the same web page is displayed 
for all the clients in the group. An exemplary log that is created by the co-browsing routine 
which manages the cookies containing an example of temporary identifier is attached hereto 
in Appendix II. 

In a pure-client server implementation, the coordination server 12 is capable of 
tracking all the page transitions and on whose behalf they were made. Thus, the coordination 
server 12 can perform tracking for billing and other purposes. 

In an alternate embodiment, the browser is augmented with a plug-in for specifying a 
new protocol that will be handled by the plug-in. By specifying that the protocol is "ikena:// tf 
instead of "http://", the plug-in can direct URL requests to itself without the need for a 
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separate proxy. In an embodiment that utilizes protocol substitution, the "ikena://" protocol is 
associated with a well-known port number (e.g., 7165). 

This method also includes masking the identity of each client's computer to prevent 
the web site from retrieving any client's actual identifier by replacing the http protocol 
identifier with a special protocol identifier. Additionally, the group-browsing method of the 
subject invention further includes creating the same temporary identifier for each client when 
any client logs on to the web site so that the same web page is displayed for all the clients in 
the group. 

The group-browsing system of the subject invention also prevents any client, 
identified as another client, from returning to the web site by deleting the temporary identifier 
at the end of a group-browsing session. Additionally, when other clients in the group are able 
to access that client's private information, the system generates a warning message. At the 
end of a group-browsing session, client software is able to detect the end of a group-browsing 
session and, in response, to direct a client's secure browser to transmit the web site URL, 
allowing the client to return to the previously accessed web site. 

The primary steps associated with the gatekeeper module of the system are shown in 
Fig. 18. In step 662, the gatekeeper launches a software application. In step 664, client A, 
starts a group-browsing session. In step 666, the software application creates an empty 
temporary cookie jar associated with group browsers. In step 668, the software application 
intercepts all cookies and places them into temporary cookie jars. In step 672, the software 
application allows clients to share personalized web pages safely by passing or blocking 
cookies between the users in a co-browsing session at step 670. 
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In step 674, the termination of a session may either allow at least one of the users to 
continue to use cookies from the group session (but in another, non-shared browser) or all the 
cookies may be cleaned up. 

Additional messages may also be displayed during group-browsing session. Dialog 
boxes may state, "For your protection, the producer of this site does not allow people to 
browse this site together due to security and privacy concerns" or, if it is for copyright issues, 
the dialog box may state, "The producer of this site does not allow group-browsing for 
copyright protection." 

If there are only two clients in a group-browsing session, when client A exits the 
group-browsing session, the system interrupts client B's experience by logging him off. 
Client B can then re-log into the web site. However, if there are more than two clients in a 
group-browsing session, for example three, unless two of the three clients exit the 
group-browsing session, the system will not interrupt the remaining clients' experience. 

The software application of the subject invention consists of two primary components, 
trigger routine computer code and cookie computer code. Exemplary trigger routine 
computer code and cookie manager computer code are attached hereto in Appendix L 

One purpose of the trigger routine computer code is to activate the cookie manager 
routine computer code when a user joins a group-browsing session. The trigger routine 
computer code accomplishes this task by adjusting the end-user settings to allow the cookie 
manager routine computer code to intercept all web traffic. Once the session has ended, the 
trigger routine computer code removes the cookie manager computer code and returns all 
settings to their previous values. 
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The cookie manager computer code protects users' personal cookies while allowing 
them to share personalized web pages and also ensures that those cookies are not improperly 
transferred to other group-browsing clients; therefore, it establishes a secure group-browsing 
environment. The cookie manager computer code accomplishes this by creating a temporary 
cookie jar that houses all cookies created during session. This temporary cookie jar is 
retained in the memory, and is accessible only by the client's application while 
group-browsing. 

Although specific features of the invention are shown in some drawings and not in 
others, this is for convenience only, as each feature may be combined with any or all of the 
other features in accordance with the invention. The words "including," "comprising," 
"having," and "with" as used herein are to be interpreted broadly and comprehensively and 
are not limited to any physical interconnection. Moreover, any embodiments disclosed in the 
subject application are not to be taken as the only possible embodiments. 

Other embodiments will occur to those skilled in the art. Obviously, numerous 
modifications and variations of the present invention are possible in light of the above 
teachings. For example, group-browsing can be performed either client-server or peer to peer 
(without the coordination server 12 or with only intermittent connectivity thereto). It is 
therefore to be understood that, within the scope of the appended claims, the invention may 
be practiced otherwise than as specifically described herein. 
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int Browser_Handler::process_request( const char * buffer, ssize_t r_bytes ) 
{ 

m_n_bytes_received += r_bytes; 

if ( (m_n_bytes_to_receive != 0) && 

(m_n_bytes_received > (m_n_bytes_to_receive + 2)) ) 

{ 

reset(); 

m_n_bytes_received = r_bytes; 

if ( m_o_request.bypass_parsing() = false) 
{ 

IKENA_TRACE ( DBG_IKPROXY_DUMP, ( "Browser_Handler(%x): Dumping raw 
incoming data.. An", this )); 

IKENA_HEXDUMP( DBG_IKPROXY_DUMP, ( buffer, r_bytes )); 

switch ( m_o_request.inject(buffer, r_bytes) ) 
{ 

case INCOMPLETE: 
if ( m_o_request.parse() == PR ERROR) 
{ 

m_response_buf.copy(INVALID_REQUEST_MSG, 
INVALID_REQUEST_MSG_LEN ); 
send_i(); 

return CONNECTION_CLOSE; 

} 

if ( (strlen(m_o_request.get_request_host()) = CMD_INFO_VIEW_LEN) && 
stricmp(m_o_request.get_request_host(), CMD INFO VIEW) = 0 ) 

{ 

create_info_page(); 

return CONNECTION_CLOSE; 

} 

else if ( (strlen(m_o_request.get_request_host()) = CMD_PURGE_COOKIE_LEN) && 
stricmp(m_o_request.get_request_host(), CMD_PURGE_COOKIE) = 0 ) 

{ 

return CONNECTION_CLOSE; 

} 

m_b_shared_session = m_o_request.is_shared_session(); 

if ( m_b_shared_session = true ) 
{ 

m_o_request.destroy_cookies(); 
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m_o_request.set_cookies( m_o_cookiejar.get_cookies(m_o_request.get_request_host() 5 
m_o_request.get_URL()) ); 

} 

m_temp_buffer.length(0); 

m_temp_bufferxrunch(); 

m_o_request.compose(m_temp_buffer); 

IKENAJTRACE ( DBG_IKPROXY_DUMP, ( M Browser_Handler(%x): Dumping parsed 
data..An", this )); 

IKENA_HEXDUMP( DBG_IKPROXY_DUMP, ( m_temp_buffer.rd _ptr(), 
m_temp_buffer.lengthO )); 

m_web_handler.set_request_host( m_o_requestget_request_host() ); 
m_web_handler.set_jequest_port( m_o_request.get_request_port() ); 

if ( m_web_handler . start( m_b_shared_session, m_o_request.get_host(), 
m_o_request.get_URL(), m_o_requestget _port()) < 0 ) 

{ 

return CONNECTION_CLOSE; 

} 

m_web_handler.inj ect_request_data( m_temp_buffer.rd_ptr(), m_temp_buffer.length() ); 



if ( m_o_request.get_body_length() > 0) 
{ 

m_n_bytes_to_receive = m_o_request.get_body_length() + 
m_o_request.get_unmodified_header_lengthO; 

IKENA_TRACE( DBGJKPROXY, ( n Browser_Handler(%x): SET 
m_n_bytes_to_receive = %d..An", this, m_n_bytes_to_receive )); 

ACE_ASSERT( (m_n_bytes_to_receive + 2) >= m_n_bytes_received }; 

} 

else 
{ 

m_n_bytes_to_receive = m_n_bytes_received = 0; 

IKENA_TRACE( DBGJKPROXY, ( "Browser_Handler(%x): SET 
m_n_bytes_to_receive = UNKNOWN... \n", this )); 
} 

m_web_handler.send(); 

if ( m_n_bytes_received = m_n_bytes_to_receive ) 
{ 
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reset(); 

} 

break; 

case IRJERROR: 

m_response_buf.copy( INVALID_REQUEST_MSG, 
INVALID JtEQUEST_MSG_LEN ); 
send_i(); 

return CONNECTION_CLOSE; 
break; 

case IR INCOMPLETE : 
IKENA_TRACE( DBG IKPROXY, ( ''Browser_Handler( 0 /ox): Complete header NOT 
yet given\n", this )); 
break; 

default: 
ACEASSERT(false); 
break; 

} 

else 

{ 

IKENA_TRACE( DBGJKPROXY, ( "Browser_Handler(%x): Bypassing parse data...\n", 
this )); 

if ( m_n_bytes_received > (m_n_bytes_to_receive + 2) ) 
{ 

ACE_ASSERT( false ); 

} 

else 
{ 

m_web_handler.inject_request_data( buffer, r_bytes ); 

} 

m_web_handler. send() ; 

if ( m_n_bytes_received >= m_n_bytes_to_receive ) 
{ 

resetO; 

} 

} 

return CONNECTION_ALIVE; 

} 
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inline void HTTP_Request::destroy_cookies( void ) 
{ 

m___v_cookies . clear() ; 
return; 

} 

inline void HTTP_Request::set_cookies( const vector<HTTP_Cookie> * v_cookies ) 

{ 

if ( v_cookies != 0 ) 
{ 

m_v_cookies = *(v_cookies); 

} 

return; 

} 
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w/ cookie management, pay attention to flag "ikena: shared" 



(16:39:35) Browser_Handler(391b338)::handle_input[4291038473], r_bytes-644 
(16:39:35) Browser_Handler(391b338): Dumping raw incoming data... 
(16:39:35) Dumping 0x3ClF960 size 644 
(16:39:35) 47 45 54 20 68 74 74 70 3A 2F 2F 6D 79 2E 79 61 
(16:39:35) 68 6F 6F 2E 63 6F 6D 2F 20 48 54 54 50 2F 3 1 2E 
(16:39:35) 30 0D OA 41 63 63 65 70 74 3A 20 69 6D 61 67 65 
(16:39:35) 2F 67 69 66 2C 20 69 6D 61 67 65 2F 78 2D 78 62 
(16:39:35) 69 74 6D 61 70 2C 20 69 6D 61 67 65 2F 6A 70 65 
(16:39:35) 67 2C 20 69 6D 61 67 65 2F 70 6A 70 65 67 2C 20 
(16:39:35)61 70 70 6C 69 63 61 74 69 6F 6E 2F 76 6E 64 2E 
(16:39:35) 6D 73 2D 70 6F 77 65 72 70 6F 69 6E 74 2C 20 61 
(16:39:35) 70 70 6C 69 63 61 74 69 6F 6E 2F 76 6E 64 2E 6D 
(16:39:35) 73 2D 65 78 63 65 6C 2C 20 61 70 70 6C 69 63 61 
(16:39:35) 74 69 6F 6E 2F 6D 73 77 6F 72 64 2C 20 2A 2F 2A 
(16:39:35) 0D OA 41 63 63 65 70 74 2D AC 61 6E 67 75 61 67 
(16:39:35) 65 3 A 20 65 6E 2D 75 73 0D OA 69 6B 65 6E 61 3 A 
(16:39:35) 20 73 68 61 72 65 64 OD OA 50 72 6F 78 79 2D 43 
(16:39:35) 6F 6E 6E 65 63 74 69 6F 6E 3A 20 4B 65 65 70 2D 
(16:39:35) 41 6C 69 76 65 OD OA 55 73 65 72 2D 41 67 65 6E 
(16:39:35) 74 3A 20 4D 6F 7A 69 6C 6C 61 2F 34 2E 30 20 28 
(16:39:35) 63 6F 6D 70 61 74 69 62 6C 65 3B 20 4D 53 49 45 
(16:39:35) 20 35 2E 35 3B 20 57 69 6E 64 6F 77 73 20 39 38 
(16:39:35) 29 OD OA 48 6F 73 74 3A 20 6D 79 2E 79 61 68 6F 
(16:39:35) 6F 2E 63 6F 6D OD OA 43 6F 6F 6B 69 65 3A 20 42 
(16:39:35) 3D 33 75 6A 38 76 3 1 70 6B 6E 34 6F 75 72 3B 20 
(16:39:35) 49 3D 69 31 3D 31 75 31 76 32 32 32 36 32 39 32 
(16:39:35) 70 34 37 34 39 34 67 34 75 35 35 37 31 37 61 37 
(16:39:35) 64 61 30 61 63 61 64 62 30 62 33 62 64 62 70 63 
(16:39:35) 30 63 3 1 63 67 63 6F 63 70 69 62 26 69 72 3D 37 
(16:39:35) 38 3B 20 59 3D 76 3D 3 1 26 6E 3D 39 38 74 70 6E 
(16:39:35) 74 30 37 75 30 6C 6F 30 26 6C 3D 32 37 34 64 36 
(16:39:35) 5F 70 37 30 64 36 2F 6F 26 70 3D 6D 32 64 30 3 1 
(16:39:35) 6F 39 34 3 1 30 30 62 30 34 26 72 3D 32 34 26 6C 
(16:39:35) 67 3D 75 73 26 69 6E 74 6C 3D 75 73 3B 20 54 3D 
(16:39:35) 7A 3D 54 68 77 66 36 41 54 6E 46 67 36 41 69 4E 
(16:39:35) 75 5A 68 32 2F 65 6F 63 45 4E 6A 63 33 42 6A 59 
(16:39:35) 7A 4E 7A 5A 50 4D 54 63 7A 4D 67 2D 2D 26 61 3D 
(16:39:35) 67 45 45 26 73 6B 3D 44 41 41 35 4F 36 30 4D 47 
(16:39:35) 4F 53 6F 46 78 26 64 3D 63 32 77 42 54 56 52 42 
(16:39:35) 64 30 46 55 52 54 42 4E 52 45 55 30 54 6D 70 42 
(16:39:35) 4D 45 35 52 4C 53 30 42 59 51 46 6E 52 55 55 42 
(16:39:35) 61 57 63 42 61 55 46 56 65 6B 46 42 41 58 70 36 
(16:39:35)41 56 52 6F 64 32 59 32 51 57 64 58 51 51 2D 2D 
(16:39:35) OD OA OD OA 
(16:39:35) Dumped 0x3ClFBE4 done 644 



GET http://my.ya 
hoo.com/ HTTP/1. 
0.. Accept: image 
/gif, image/x-xb 
itmap, image/jpe 
g, image/pjpeg, 
application/vnd. 
ms-powerpoint, a 
pplication/vrd.m 
s-excel, applica 
tion/msword, */* 
. . Accept-Languag 
e: en-us..ikena: 
shared.. Proxy-C 
onnection: Keep- 
Alive. .User-Agen 
t: Mozilla/4.0 ( 
compatible; MSIE 
5.5; Windows 98 
)..Host: my.yaho 
o.com.. Cookie: B 
=3uj8vlpkn4our; 
I=il=lulv2226292 
P 47494g4u55717a7 
da0acadb0b3bdbpc 
Oc 1 cgcocpib&ir=7 
8; Y=v=l&n=98tpn 
t07u01o0&l=274d6 
_p70d6/o&p=m2d0 1 
o94100b04&r=24&l 
g=us&intl=us; T= 
z=Thwf6ATnFg6AiN 
uZh2/eocENjc3BjY 
zNzZPMTczMg-&a= 
gEE&sk=DAA5O60MG 
OsoFx&d=c2wBTVRB 
dOFURTBNREUOTmpB 
ME5RLS0BYQFnRUUB 
aWcBaUFVekFBAXp6 
AVRod2Y2QWdXQQ~ 



(16:39:35) Browser_Handler(391b338): Dumping parsed data... 
(16:39:35) Dumping 0x392BC54 size 289 
(16:39:35) 47 45 54 20 2F 20 48 54 54 50 2F 31 2E 30 OD OA 
(16:39:35) 41 63 63 65 70 74 3 A 20 69 6D 61 67 65 2F 67 69 
(16:39:35) 66 2C 20 69 6D 61 67 65 2F 78 2D 78 62 69 74 6D 
(16:39:35) 61 70 2C 20 69 6D 61 67 65 2F 6A 70 65 67 2C 20 
(16:39:35) 69 6D 61 67 65 2F 70 6A 70 65 67 2C 20 61 70 70 



GET /HTTP/1.0.. 
Accept: image/gi 
f, image/x-xbitm 
ap, image/jpeg, 
image/pjpeg, app 
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16:39:35) 6C 69 63 61 74 69 6F 6E 2F 76 6E 64 2E 6D 73 2D 
16:39:35) 70 6F 77 65 72 70 6F 69 6E 74 2C 20 61 70 70 6C 
16:39:35) 69 63 61 74 69 6F 6E 2F 76 6E 64 2E 6D 73 2D 65 
16:39:35) 78 63 65 6C 2C 20 61 70 70 6C 69 63 61 74 69 6F 
16:39:35) 6E 2F 6D 73 77 6F 72 64 2C 20 2A 2F 2A 0D OA 41 
16:39:35) 63 63 65 70 74 2D 4C 61 6E 67 75 61 67 65 3A 20 
16:39:35) 65 6E 2D 75 73 OD OA 43 6F 6E 6E 65 63 74 69 6F 
16:39:35) 6E 3A 20 4B 65 65 70 2D 41 6C 69 76 65 OD OA 55 
16:39:35) 73 65 72 2D 41 67 65 6E 74 3A 20 4D 6F 7A 69 6C 
16:39:35) 6C 61 2F 34 2E 30 20 28 63 6F 6D 70 61 74 69 62 
16:39:35) 6C 65 3B 20 4D 53 49 45 20 35 2E 35 3B 20 57 69 
16:39:35) 6E 64 6F 77 73 20 39 38 29 OD OA 48 6F 73 74 3A 
16:39:35) 20 6D 79 2E 79 61 68 6F 6F 2E 63 6F 6D OD OA OD 
16:39:35) OA 

16:39:35) Dumped 0x392BD75 done 289 

16:39:39) Web_Handler(391b3a4)::send_i: Dumping outgoing data=[3921f44], size=289... 
16:39:39) Dumping 0x3921F44 size 289 
16:39:39) 47 45 54 20 2F 20 48 54 54 50 2F 3 1 2E 30 OD OA 
16:39:39) 41 63 63 65 70 74 3A 20 69 6D 61 67 65 2F 67 69 
16:39:39) 66 2C 20 69 6D 61 67 65 2F 78 2D 78 62 69 74 6D 
16:39:39) 61 70 2C 20 69 6D 61 67 65 2F 6A 70 65 67 2C 20 
16:39:39) 69 6D 61 67 65 2F 70 6A 70 65 67 2C 20 61 70 70 
16:39:39) 6C 69 63 61 74 69 6F 6E 2F 76 6E 64 2E 6D 73 2D 
16:39:39) 70 6F 77 65 72 70 6F 69 6E 74 2C 20 61 70 70 6C 
16:39:39) 69 63 61 74 69 6F 6E 2F 76 6E 64 2E 6D 73 2D 65 
16:39:39) 78 63 65 6C 2C 20 61 70 70 6C 69 63 61 74 69 6F 
16:39:39) 6E 2F 6D 73 77 6F 72 64 2C 20 2A 2F 2A OD OA 41 
16:39:39) 63 63 65 70 74 2D 4C 61 6E 67 75 61 67 65 3A 20 
16:39:39) 65 6E 2D 75 73 OD OA 43 6F 6E 6E 65 63 74 69 6F 
16:39:39) 6E 3A 20 4B 65 65 70 2D 41 6C 69 76 65 OD OA 55 
16:39:39) 73 65 72 2D 41 67 65 6E 74 3 A 20 4D 6F 7A 69 6C 
16:39:39) 6C 61 2F 34 2E 30 20 28 63 6F 6D 70 61 74 69 62 
16:39:39) 6C 65 3B 20 4D 53 49 45 20 35 2E 35 3B 20 57 69 
16:39:39) 6E 64 6F 77 73 20 39 38 29 OD OA 48 6F 73 74 3A 
16:39:39) 20 6D 79 2E 79 61 68 6F 6F 2E 63 6F 6D OD OA OD 
16:39:39) OA 

16:39:39) Dumped 0x3922065 done 289 

16:39:39) Web_Handler(391b3a4)::handle_input[4291038473], r_bytes = 1024, errno = 6 
16:39:39) Web_Handler(391b3a4): Dumping raw incoming data=[3clf960], size=1024..., 
16:39:39) Dumping 0x3ClF960 size 1024 
16:39:39) 48 54 54 50 2F 3 1 2E 30 20 32 30 30 20 4F 4B OD 
16:39:39) OA 44 61 74 65 3 A 20 4D 6F 6E 2C 20 30 35 20 46 
16:39:39) 65 62 20 32 30 30 31 20 32 31 3A 33 38 3A 34 34 
16:39:39) 20 47 4D 54 OD OA 43 61 63 68 65 2D 43 6F 6E 74 
16:39:39) 72 6F 6C 3 A 20 70 72 69 76 61 74 65 OD OA 43 6F 
16:39:39) 6E 6E 65 63 74 69 6F 6E 3 A 20 63 6C 6F 73 65 OD 
16:39:39) OA 43 6F 6E 74 65 6E 74 2D 54 79 70 65 3 A 20 74 
16:39:39) 65 78 74 2F 68 74 6D 6C OD OA 53 65 74 2D 43 6F 
16:39:39) 6F 6B 69 65 3A 20 42 3D 62 35 6B 37 6F 71 38 74 
16:39:39) 37 75 37 62 34 26 62 3D 32 3B 20 65 78 70 69 72 
16:39:39) 65 73 3D 54 68 75 2C 20 31 35 20 41 70 72 20 32 
16:39:39) 30 3 1 30 20 32 30 3 A 30 30 3 A 30 30 20 47 4D 54 
16:39:39) 3B 20 70 61 74 68 3D 2F 3B20 64 6F6D61 69 6E 
16:39:39) 3D 2E 79 61 68 6F 6F 2E 63 6F 6D OD OA OD OA 3C 
16:39:39) 68 74 6D 6C 3E OA 3C 68 65 61 64 3E OA 3C 73 74 



lication/vnd.ms- 
powerpoint, appl 
ication/vnd.ms-e 
xcel, applicatio 
n/m sword, */*..A 
ccept-Language: 
en-us.. Connectio 
n: Keep-Alive.. U 
ser-Agent: Mozil 
la/4.0 (compatib 
le; MSIE 5.5; Wi 
ndows 98).. Host: 
my.yahoo.com... 



GET /HTTP/1.0.. 
Accept: image/gi 
f, image/x-xbitrn 
ap, image/jpeg, 
image/pjpeg, app 
lication/vnd.ms- 
powerpoint, appl 
ication/vnd.ms-e 
xcel, applicatio 
n/msword, */*..A 
ccept-Language: 
en-us..Connectio 
n: Keep-Alive..U 
ser-Agent: Mozil 
la/4.0 (compatib 
le; MSIE 5.5; Wi 
ndows 98)..Host: 
my.yahoo.com... 



HTTP/ 1.0 200 OK. 
.Date: Mon, 05 F 
eb 2001 21:38:44 
GMT..Cache-Cont 
rol: private. .Co 
nnection: close. 
.Content-Type: t 
ext/htmI..Set-Co 
okie: B=b5k7oq8t 
7u7b4&b=2; expir 
es=Thu, 15 Apr 2 
010 20:00:00 GMT 
; path=/; domain 
= yahoo.com. ...< 
html>.<head>.<st 
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(16:39:39) 79 6C 65 3E OA 3C 21 2D 2D OA 73 75 62 68 65 61 yle>.<!--.subhea 

(16:39:39) 64 20 7B 20 63 6F 6C 6F 72 3 A 3B 20 20 66 6F 6E d { color:; fon 

(16:39:39) 74 2D 66 61 63 65 3A 41 72 69 61 6C 3B 20 66 6F t-face:Arial; fo 

(16:39:39) 6E 74 2D 73 69 7A 65 3A 2D 31 3B20 7D2D2D3E nt-size:-l; }-> 

(16:39:39) OA 3C 2F 73 74 79 6C 65 3E OA OA 3C 74 69 74 6C .</style>..<titl 

(16:39:39) 65 3E 57 65 6C 63 6F 6D 65 20 74 6F 20 4D 79 20 e> Welcome to My 

(16:39:39) 59 61 68 6F 6F 21 3C 2F 74 69 74 6C 65 3E OA 3C Yahoo! </title> < 

(16:39:39) 2F 68 65 61 64 3E OA 3C 62 6F 64 79 20 20 62 67 /head>. <body bg 

(16:39:39) 63 6F 6C 6F 72 3D 22 23 66 66 66 66 66 66 22 20 color="#frTffr 

(16:39:39) 6F 6E 4C 6F 61 64 3D 22 69 66 28 64 6F 63 75 6D onLoad="if(docum 

(16:39:39) 65 6E 74 2E 66 6D 20 26 26 20 64 6F 63 75 6D 65 ent.fin && docume 

(16:39:39) 6E 74 2E 66 6D 2E 6C 6F 67 69 6E 29 7B 64 6F 63 nt.fm.login){doc 

(16:39:39) 75 6D 65 6E 74 2E 66 6D 2E 6C 6F 67 69 6E 2E 66 ument.fm.login.f 

(16:39:39) 6F 63 75 73 28 29 3B 7D 22 3E OA OA 3C 73 63 72 ocus() ;}">.. <scr 

(16:39:39) 69 70 74 20 6C 61 6E 67 75 61 67 65 3D 6A 61 76 ipt ianguage=jav 

(16:39:39) 61 73 63 72 69 70 74 3E OA 3C 21 2D 2D OA 76 61 ascript> <!~.va 

(16:39:39) 72 20 72 65 6D 6F 74 65 20 3D 20 6E 75 6C 6C 3B r remote = null; 

(16:39:39) OA 66 75 6E 63 74 69 6F 6E 20 72 73 28 6E 2C 75 -function rs(n,u 

(16:39:39) 2C 77 2C 68 29 20 7B OA 72 65 6D 6F 74 65 20 3D ,w,h) {.remote = 

(16:39:39) 20 77 69 6E 64 6F 77 2E 6F 70 65 6E 28 75 2C 20 window.open(u, 

(16:39:39) 6E 2C 20 27 77 69 64 74 68 3D 27 20 2B 20 77 20 n, 'width=' + w 

(16:39:39) 2B 20 27 2C 68 65 69 67 68 74 3D 27 20 2B 20 68 + \height~ 1 + h 

(16:39:39) 20 2B 27 2C 72 65 73 69 7 A 61 62 6C 65 3D 79 65 +*,resizable=ye 

(16:39:39) 73 2C 73 63 72 6F 6C 6C 62 61 72 73 3D 79 65 73 s,scrollbars=yes 

(16:39:39) 27 29 3B OA 69 66 20 28 72 65 6D 6F 74 65 20 21 '); if (remote ! 

(16:39:39) 3D 20 6E 75 6C 6C 29 20 7B OA 69 66 20 28 72 65 = null) {.if (re 

(16:39:39) 6D 6F 74 65 2E 6F 70 65 6E 65 72 20 3D 3D 20 6E mote.opener = n 

(16:39:39) 75 6C 6C 29 OA 72 65 6D 6F 74 65 2E 6F 70 65 6E ull).remote.open 

(16:39:39) 65 72 20 3D 20 73 65 6C 66 3B OA 77 69 6E 64 6F er = self;.windo 

(16:39:39) 77 2E 6E 61 6D 65 20 3D 20 27 6D 79 59 61 68 6F w.name = 'myYaho 

(16:39:39) 6F 52 6F 6F 74 27 3B OA 72 65 6D 6F 74 65 2E 6C oRoot';.remote.l 

(16:39:39) 6F 63 61 74 69 6F 6E 2E 68 72 65 66 20 3D 20 75 ocation.href = u 

(16:39:39) 3B OA 7D OA 7D OA 2F 2F 2D 2D 3E OA 3C 2F 73 63 ;.} .} .//-->.</sc 

(16:39:39) 72 69 70 74 3E OA 3C 63 65 6E 74 65 72 3E OA 3C ript>.<center>.< 

(16:39:39) 74 61 62 6C 65 20 62 6F 72 64 65 72 3D 30 20 77 table border=0 w 

(16:39:39) 69 64 74 68 3D 22 31 30 30 25 22 20 63 65 6C 6C idth=" 1 00%" cell 

(16:39:39) 73 70 61 63 69 6E 67 3D 30 20 63 65 6C 6C 70 61 spacing=0 cellpa 

(16:39:39) 64 64 69 6E 67 3D 30 3E 3C 74 72 3E 3C 74 64 20 dding=0><tr><td 

(16:39:39) 77 69 64 74 68 3D 22 31 30 30 25 22 3E OA 3C 74 width="100%">.<t 

(16:39:39) 61 62 6C 65 20 62 6F 72 64 65 72 3D 30 20 77 69 able border=0 wi 

(16:39:39) 64 74 68 3D 31 30 30 25 20 63 65 6C 6C 73 70 61 dth=100% cellspa 

(16:39:39) 63 69 6E 67 3D 30 20 63 65 6C 6C 70 61 64 64 69 cing=0 cellpaddi 

(16:39:39) 6E 67 3D 30 3E 3C 74 72 3E 3C 74 64 20 76 61 6C ng=0><tr><td val 

(16:39:39) 69 67 6E 3D 6D 69 64 64 6C 65 20 77 69 64 74 68 ign-middle width 

(16:39:39) 3D 22 31 25 22 3E 3C 41 20 48 52 45 46 3D 22 2F ="1%"><A HREF='7 

(16:39:39) 75 70 64 2F 3F 68 74 74 70 3A 2F 2F 6D 79 2E 79 upd/?http://my.y 

(16:39:39) 61 68 6F 6F 2E 63 6F 6D 2F 22 3E 3C 69 6D 67 20 ahoo.comrximg 

(16:39:39) 73 72 63 3D 22 68 74 74 70 3A 2F 2F 75 73 2E 69 src="http://us.i 

(16:39:39) 31 2E 79 69 6D 67 2E 63 6F 6D 2F 75 73 2E 79 69 1 .yimg.com/us.yi 
(16:39:39) Dumped 0x3ClFD6O done 1024 

(16:39:39) Web_Handler(391b3a4): Dumping parsed data=[3924688], size=925... 
(16:39:39) Dumping 0x3924688 size 925 

(16:39:39) 48 54 54 50 2F 3 1 2E 30 20 32 30 30 20 4F 4B OD HTTP/1 .0 200 OK. 

(16:39:39) OA 44 61 74 65 3A 20 4D 6F 6E 2C 20 30 35 20 46 .Date: Mon, 05 F 

(16:39:39)65 62 20 32 30 30 31 20 32 31 3A 33 38 3A 34 34 eb2001 21:38:44 
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(16:39:39) 20 47 4D 54 0D OA 43 61 63 68 65 2D 43 6F 6E 74 GMT..Cache-Cont 

(16:39:39) 72 6F 6C 3 A 20 70 72 69 76 61 74 65 OD OA 43 6F rol: privatc.Co 

(16:39:39) 6E 6E 65 63 74 69 6F 6E 3A 20 63 6C 6F 73 65 OD nnection: close. 

(16:39:39) OA 43 6F 6E 74 65 6E 74 2D 54 79 70 65 3 A 20 74 .Content-Type: t 

(16:39:39) 65 78 74 2F 68 74 6D 6C OD OA OD OA 3C 68 74 6D ext/html....<htm 

(16:39:39) 6C 3E OA 3C 68 65 61 64 3E OA 3C 73 74 79 6C 65 l>.<head>.<style 

(16:39:39) 3E OA 3C 21 2D 2D OA 73 75 62 68 65 61 64 20 7B >.<! --.subhead { 

(16:39:39) 20 63 6F 6C 6F 72 3A 3B 20 20 66 6F 6E 74 2D 66 color:; font-f 

(16:39:39) 61 63 65 3A 41 72 69 61 6C 3B 20 66 6F 6E 74 2D ace:Arial; font- 

(16:39:39)73 69 7A 65 3A2D31 3B 20 7D 2D 2D 3E OA 3C 2F size:- 1 ; }-->.</ 

(16:39:39) 73 74 79 6C 65 3E OA OA 3C 74 69 74 6C 65 3E 57 sty!e>..<title>W 

(16:39:39) 65 6C 63 6F 6D 65 20 74 6F 20 4D 79 20 59 61 68 elcome to My Yah 

(16:39:39) 6F 6F 21 3C 2F 74 69 74 6C 65 3E OA 3C 2F 68 65 oo!</title>.</he 

(16:39:39) 61 64 3E OA 3C 62 6F 64 79 20 20 62 67 63 6F 6C ad>.<body bgcol 

(16:39:39) 6F 72 3D 22 23 66 66 66 66 66 66 22 20 6F 6E 4C or="#fTffir' onL 

(16:39:39) 6F 61 64 3D 22 69 66 28 64 6F 63 75 6D 65 6E 74 oad="if(document 

(16:39:39) 2E 66 6D 20 26 26 20 64 6F 63 75 6D 65 6E 74 2E .frn && document. 

(16:39:39) 66 6D 2E 6C 6F 67 69 6E 29 7B 64 6F 63 75 6D 65 fm.login){docume 

(16:39:39) 6E 74 2E 66 6D 2E 6C 6F 67 69 6E 2E 66 6F 63 75 nt.fm. login. focu 

(16:39:39) 73 28 29 3B 7D 22 3E OA OA 3C 73 63 72 69 70 74 s();}"> -<script 

(16:39:39) 20 6C 61 6E 67 75 61 67 65 3D 6A 61 76 61 73 63 language=javasc 

(16:39:39) 72 69 70 74 3E OA 3C 21 2D 2D OA 76 61 72 20 72 ript>.<!-.var r 

(16:39:39) 65 6D 6F 74 65 20 3D 20 6E 75 6C 6C 3B OA 66 75 emote = null;.fu 

(16:39:39) 6E 63 74 69 6F 6E 20 72 73 28 6E 2C 75 2C 77 2C nction rs(n,u,w, 

(16:39:39) 68 29 20 7B OA 72 65 6D 6F 74 65 20 3D 20 77 69 h) {.remote = wi 

(16:39:39) 6E 64 6F 77 2E 6F 70 65 6E 28 75 2C 20 6E 2C 20 ndow.open(u, n, 

(16:39:39) 27 77 69 64 74 68 3D 27 20 2B 20 77 20 2B 20 27 'width=' + w + ' 

(16:39:39) 2C 68 65 69 67 68 74 3D 27 20 2B 20 68 20 2B 27 ,height=' + h +' 

(16:39:39) 2C 72 65 73 69 7A 61 62 6C 65 3D 79 65 73 2C 73 ,resizable=yes,s 

(16:39:39) 63 72 6F 6C 6C 62 61 72 73 3D 79 65 73 27 29 3B crollbars=yes'); 

(16:39:39) OA 69 66 20 28 72 65 6D 6F 74 65 20 21 3D 20 6E .if (remote != n 

(16:39:39) 75 6C 6C 29 20 7B OA 69 66 20 28 72 65 6D 6F 74 ull) {.if (remot 

(16:39:39) 65 2E 6F 70 65 6E 65 72 20 3D 3D 20 6E 75 6C 6C e.opener = null 

(16:39:39) 29 OA 72 65 6D 6F 74 65 2E 6F 70 65 6E 65 72 20 ).remote. opener 

(16:39:39) 3D 20 73 65 6C 66 3B OA 77 69 6E 64 6F 77 2E 6E = self;.window.n 

(16:39:39) 61 6D 65 20 3D 20 27 6D 79 59 61 68 6F 6F 52 6F ame = 'myYahooRo 

(16:39:39) 6F 74 27 3B OA 72 65 6D 6F 74 65 2E 6C 6F 63 61 of;. remot e.loca 

(16:39:39) 74 69 6F 6E 2E 68 72 65 66 20 3D 20 75 3B OA 7D tion.href = u;.} 

(16:39:39) OA 7D OA 2F 2F 2D 2D 3E OA 3C 2F 73 63 72 69 70 .}.//-->. </scrip 

(16:39:39) 74 3E OA 3C 63 65 6E 74 65 72 3E OA 3C 74 61 62 t>.<center>.<tab 

(16:39:39) 6C 65 20 62 6F 72 64 65 72 3D 30 20 77 69 64 74 le border=0 widt 

(16:39:39) 68 3D 22 31 30 30 25 22 20 63 65 6C 6C 73 70 61 h="100%" cellspa 

(16:39:39) 63 69 6E 67 3D 30 20 63 65 6C 6C 70 61 64 64 69 cing=0 cellpaddi 

(16:39:39) 6E 67 3D 30 3E 3C 74 72 3E 3C 74 64 20 77 69 64 ng=0><tr><td wid 

(16:39:39) 74 68 3D 22 31 30 30 25 22 3E OA 3C 74 61 62 6C th="100% M >.<tabl 

(16:39:39) 65 20 62 6F 72 64 65 72 3D 30 20 77 69 64 74 68 e border=0 width 

(16:39:39) 3D 31 30 30 25 20 63 65 6C 6C 73 70 61 63 69 6E =100% cellspacin 
(16:39:39) 67 3D 30 20 63 65 6C 6C 70 61 64 64 69 6E 67 3D g=0 cellpadding- 

(16:39:39) 30 3E 3C 74 72 3E 3C 74 64 20 76 61 6C 69 67 6E 0><tr><td valign 

(16:39:39) 3D 6D 69 64 64 6C 65 20 77 69 64 74 68 3D 22 31 =middle width="l 

(16:39:39) 25 22 3E 3C 41 20 48 52 45 46 3D 22 2F 75 70 64 %"><A HREF=7upd 

(16:39:39) 2F 3F 68 74 74 70 3A 2F 2F 6D 79 2E 79 61 68 6F /?http://my.yaho 
(16:39:39) 6F 2E 63 6F 6D 2F 22 3E 3C 69 6D 67 20 73 72 63 o.com/"><img src 

(16:39:39) 3D 22 68 74 74 70 3A 2F 2F 75 73 2E 69 31 2E 79 ="http://us.il.y 
(16:39:39) 69 6D 67 2E 63 6F 6D 2F 75 73 2E 79 69 img.com/us.yi 
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(16:39:39) Dumped 0x3924A25 done 925 



(16:39:47) Browser_Handler(392e398)::handle_input[4291038473], r_bytes=709 
(16:39:47) Browser_Handler(392e398): Dumping raw incoming data... 
(16:39:47) Dumping 0x3ClF960 size 709 
(16:39:47) 47 45 54 20 68 74 74 70 3A 2F 2F 6C 6F 67 69 6E 
(16:39:47) 2E 79 61 68 6F 6F 2E 63 6F 6D 2F 63 6F 6E 66 69 
(16:39:47) 67 2F 76 65 72 69 66 79 3F 2E 64 6F 6E 65 3D 68 
(16:39:47) 74 74 70 25 33 61 2F 2F 6D 79 2E 79 61 68 6F 6F 
(16:39:47) 2E 63 6F 6D 20 48 54 54 50 2F 31 2E 30 0D OA 41 
(16:39:47) 63 63 65 70 74 3A 20 69 6D 61 67 65 2F 67 69 66 
(16:39:47) 2C 20 69 6D 61 67 65 2F 78 2D 78 62 69 74 6D 61 
(16:39:47) 70 2C 20 69 6D 61 67 65 2F 6A 70 65 67 2C 20 69 
(16:39:47) 6D 61 67 65 2F 70 6A 70 65 67 2C 20 61 70 70 6C 
(16:39:47) 69 63 61 74 69 6F 6E 2F 76 6E 64 2E 6D 73 2D 70 
(16:39:47) 6F 77 65 72 70 6F 69 6E 74 2C 20 61 70 70 6C 69 
(16:39:47) 63 61 74 69 6F 6E 2F 76 6E 64 2E 6D 73 2D 65 78 
(16:39:47) 63 65 6C 2C 20 61 70 70 6C 69 63 61 74 69 6F 6E 
(16:39:47) 2F 6D 73 77 6F 72 64 2C 20 2A 2F 2A OD OA 41 63 
(16:39:47) 63 65 70 74 2D 4C 61 6E 67 75 61 67 65 3A 20 65 
(16:39:47) 6E 2D 75 73 OD OA 69 6B 65 6E 61 3A 20 73 68 61 
(16:39:47) 72 65 64 OD OA 50 72 6F 78 79 2D 43 6F 6E 6E 65 
(16:39:47) 63 74 69 6F 6E 3 A 20 4B 65 65 70 2D 41 6C 69 76 
(16:39:47) 65 OD OA 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D 
(16:39:47) 6F 7A 69 6C 6C 61 2F 34 2E 30 20 28 63 6F 6D 70 
(16:39:47) 61 74 69 62 6C 65 3B 20 4D 53 49 45 20 35 2E 35 
(16:39:47) 3B 20 57 69 6E 64 6F 77 73 20 39 38 29 OD OA 48 
(16:39:47) 6F 73 74 3A 20 6C 6F 67 69 6E 2E 79 61 68 6F 6F 
(16:39:47) 2E 63 6F 6D OD OA 50 72 61 67 6D 61 3A 20 6E 6F 
(16:39:47) 2D 63 61 63 68 65 OD OA 43 6F 6F 6B 69 65 3A 20 
(16:39:47) 42 3D 33 75 6A 38 76 3 1 70 6B 6E 34 6F 75 72 3B 
(16:39:47) 20 49 3D 69 31 3D 31 75 31 76 32 32 32 36 32 39 
(16:39:47) 32 70 34 37 34 39 34 67 34 75 35 35 37 31 37 61 
(16:39:47) 37 64 61 30 61 63 61 64 62 30 62 33 62 64 62 70 
(16:39:47) 63 30 63 3 1 63 67 63 6F 63 70 69 62 26 69 72 3D 
(16:39:47) 37 38 3B 20 59 3D 76 3D 31 26 6E 3D 39 38 74 70 
(16:39:47) 6E 74 30 37 75 30 6C 6F 30 26 6C 3D 32 37 34 64 
(16:39:47) 36 5F 70 37 30 64 36 2F 6F 26 70 3D 6D 32 64 30 
(16:39:47)31 6F 39 34 31 30 30 62 30 34 26 72 3D 32 34 26 
(16:39:47) 6C 67 3D 75 73 26 69 6E 74 6C 3D 75 73 3B 20 54 
(16:39:47) 3D 7A 3D 54 68 77 66 36 41 54 6E 46 67 36 41 69 
(16:39:47) 4E 75 5A 68 32 2F 65 6F 63 45 4E 6A 63 33 42 6A 
(16:39:47) 59 7A 4E 7A 5A 50 4D 54 63 7A 4D 67 2D 2D 26 61 
(16:39:47) 3D 67 45 45 26 73 6B 3D 44 41 41 35 4F 36 30 4D 
(16:39:47) 47 4F 53 6F 46 78 26 64 3D 63 32 77 42 54 56 52 
(16:39:47) 42 64 30 46 55 52 54 42 4E 52 45 55 30 54 6D 70 
(16:39:47) 42 4D 45 35 52 4C 53 30 42 59 51 46 6E 52 55 55 
(16:39:47) 42 61 57 63 42 61 55 46 56 65 6B 46 42 41 58 70 
(16:39:47) 36 41 56 52 6F 64 32 59 32 51 57 64 58 51 51 2D 
(16:39:47) 2D OD OA OD OA 
(16:39:47) Dumped Ox3ClFC25 done 709 
(16:39:47) Browser__Handler(392e398): Dumping parsed data... 
(16:39:47) Dumping 0x393ECB4 size 686 
(16:39:47) 47 45 54 20 2F 63 6F 6E 66 69 67 2F 76 65 72 69 
(16:39:47) 66 79 3F 2E 64 6F 6E 65 3D 68 74 74 70 25 33 61 



GET http://login 
.yahoo.com/confi 
g/verify?.done=h 
ttp%3 a//my .yahoo 
.com HTTP/1. 0..A 
ccept: image/gif 
, image/x-xbitma 
p, image/jpeg, i 
mage/pjpeg, appl 
ication/vnd.ms-p 
owerpoint, appli 
cation/vnd.ms-ex 
eel, application 
/msword, */*..Ac 
cept-Language: e 
n-us..ikena: sha 
red..Proxy-Conne 
ction: Keep-Aliv 
e..User-Agent: M 
ozilla/4.0 (comp 
atible; MSIE 5.5 
; Windows 98).. H 
ost: login. yahoo 
.com.. Pragma: no 
-cache..Cookie: 
B-3uj8v 1 pkn4our; 
I=il=lulv222629 
2p47494g4u55717a 
7da0acadb0b3bdbp 
cOclcgcocpib&ir= 
78; Y=v=l&n=98tp 
nt07u01o0&l=274d 
6_p70d6/o&p=m2d0 
Io94100b04&r=24& 
lg=us&int!=us; T 
=z=Thwf6ATnFg6Ai 
NuZh2/eocENjc3Bj 
YzNzZPMTczMg-&a 
=gEE&sk=DAA5O60M 
GOSoFx&d=c2wBTVR 
BdOFURTBNREUOTmp 
BME5RLS0BYQFnRUU 
BaWcBaUFVekFBAXp 
6AVRod2Y2QWdXQQ- 



GET /config/veri 
fy?.done=http%3a 



II-5 



~3o - 



WO 01/57738 



PCT/US01/03903 



(16:39:47) 2F 2F 6D 79 2E 79 61 68 6F 6F 2E 63 6F 6D 20 48 
(16:39:47) 54 54 50 2F 31 2E 30 0D OA 43 6F 6F 6B 69 65 3A 
(16:39:47) 20 42 3D 62 35 6B 37 6F 71 38 74 37 75 37 62 34 
(16:39:47) 26 62 3D 32 3B 20 59 3D 76 3D 3 1 26 6E 3D 39 38 
(16:39:47) 7470 6E 74 30 37 75 30 6C 6F 30 26 6C 3D 32 37 
(16:39:47) 34 64 36 5F 70 37 30 64 36 2F 6F 26 70 3D 6D 32 
(16:39:47)64 30 31 6F39 34 31 31 30 62 30 34 26 72 3D 32 
(16:39:47) 34 26 6C 67 3D 75 73 26 69 6E 74 6C 3D 75 73 3B 
(16:39:47) 20 54 3D 7A 3D 73 3 1 78 66 36 41 73 37 47 67 36 
(16:39:47) 41 30 30 75 45 45 51 79 67 49 7A 38 4E 6A 63 33 
(16:39:47) 42 6A 59 7A 4E 7A 5A 50 4D 54 63 7A 4D 67 2D 2D 
(16:39:47) 26 61 3D 67 45 45 26 73 6B 3D 44 41 41 77 6B 34 
(16:39:47) 70 68 50 78 50 4E 57 63 26 64 3D 63 32 77 42 54 
(16:39:47) 56 52 42 64 30 46 55 52 54 42 4E 52 45 55 30 54 
(16:39:47) 6D 70 42 4D 45 35 52 4C 53 30 42 59 51 46 6E 52 
(16:39:47) 55 55 42 61 57 63 42 61 55 46 56 65 6B 46 42 41 
(16:39:47) 58 70 36 41 58 4D 78 65 47 59 32 51 57 64 58 51 
(16:39:47) 5 1 2D 2D 3B 20 49 3D 69 3 1 3D 30 3 1 30 34 30 67 
(16:39:47) 3 1 75 31 76 32 34 32 36 32 39 32 70 33 68 34 39 
(16:39:47) 34 67 34 75 37 31 37 32 37 61 37 64 37 66 37 69 
(16:39:47) 37 6F 38 34 39 6A 61 30 61 6E 62 33 62 64 62 68 
(16:39:47) 62 70 63 30 63 31 63 62 63 70 63 73 63 75 65 6D 
(16:39:47) 26 69 72 3D 37 63 OD OA 41 63 63 65 70 74 3A 20 
(16:39:47) 69 6D 61 67 65 2F 67 69 66 2C 20 69 6D 61 67 65 
(16:39:47) 2F 78 2D 78 62 69 74 6D 61 70 2C 20 69 6D 61 67 
(16:39:47) 65 2F 6A 70 65 67 2C 20 69 6D 61 67 65 2F 70 6A 
(16:39:47) 70 65 67 2C 20 61 70 70 6C 69 63 61 74 69 6F 6E 
(16:39:47) 2F 76 6E 64 2E 6D 73 2D 70 6F 77 65 72 70 6F 69 
(16:39:47) 6E 74 2C 20 61 70 70 6C 69 63 61 74 69 6F 6E 2F 
(16:39:47) 76 6E 64 2E 6D 73 2D 65 78 63 65 6C 2C 20 61 70 
(16:39:47) 70 6C 69 63 61 74 69 6F 6E 2F 6D 73 77 6F 72 64 
(16:39:47) 2C 20 2A 2F 2A OD OA 41 63 63 65 70 74 2D 4C 61 
(16:39:47) 6E 67 75 61 67 65 3 A 20 65 6E 2D 75 73 OD OA 43 
(16:39:47) 6F 6E 6E 65 63 74 69 6F 6E 3 A 20 4B 65 65 70 2D 
(16:39:47) 41 6C 69 76 65 OD OA 55 73 65 72 2D 41 67 65 6E 
(16:39:47) 74 3A 20 4D 6F 7A 69 6C 6C 61 2F 34 2E 30 20 28 
(16:39:47) 63 6F 6D 70 61 74 69 62 6C 65 3B 20 4D 53 49 45 
(16:39:47) 20 35 2E 35 3B 20 57 69 6E 64 6F 77 73 20 39 38 
(16:39:47) 29 OD OA 48 6F 73 74 3 A 20 6C 6F 67 69 6E 2E 79 
(16:39:47) 61 68 6F 6F 2E 63 6F 6D OD OA 50 72 61 67 6D 61 
(16:39:47) 3A 20 6E 6F 2D 63 61 63 68 65 OD OA OD OA 
(16:39:47) Dumped 0x393EF62 done 686 



//my .yahoo.com H 
TTP/1.0.. Cookie: 
B=b5k7oq8t7u7b4 
&b=2; Y=v=l&n-98 
tpnt07u01o0&l=27 
4d6_p70d6/o&p==m2 
d01o94110b04&r=2 
4&lg=us&intl=us; 
T=z=slxf6As7Gg6 
A00uEEQygIz8Njc3 
BjYzNzZPMTczMg- 
&a=gEE&sk=DAAwk4 
P hPxPNWc&d=c2wBT 
VRBdOFURTBNREUOT 
mpBME5RLS0BYQFnR 
UUBaWcBaUFVekFBA 
Xp6AXMxeGY2QWdXQ 
Q-; l=il=01040g 
Iulv2426292p3h49 
4g4u71727a7d7f7i 
7o849ja0anb3bdbh 
bpcOc 1 cbcpcscuem 
&ir=7c. Accept: 
image/gif, image 
/x-xbitmap, imag 
e/jpeg, image/pj 
peg, application 
/vn d . ms-po werpo i 
nt, application/ 
vnd.ms-excel, ap 
plication/msword 
, */*..Accept-La 
nguage: en-us..C 
onnection: Keep- 
Alive.. User- Agen 
t: Mozilla/4.0 ( 
compatible; MSIE 
5.5; Windows 98 
)..Host: login.y 
ahoo.com. .Pragma 
: no-cache.... 



w/o cookie management, no flag "ikena: shared" 



(16:39:25) Browser_Handler(39082d8): :handle_input[4291 038473], r_bytes=3 10 
(16:39:25) Browser_Handler(39082d8): Dumping raw incoming data... 
(16:39:25) Dumping 0x3ClF960 size 310 
(16:39:25) 47 45 54 20 68 74 74 70 3 A 2F 2F 77 77 77 2E 69 
(16:39:25) 6B 65 6E 61 2E 63 6F 6D 2F 67 72 6F 75 70 2F 62 
(16:39:25) 65 67 69 6E 2E 63 66 6D 20 48 54 54 50 2F 3 1 2E 
(16:39:25) 30 OD OA 41 63 63 65 70 74 3A 20 2A 2F 2A OD OA 
(16:39:25) 41 63 63 65 70 74 2D 4C 61 6E 67 75 61 67 65 3A 



GET http://www.i 
kena.com/group/b 
egin.cfm HTTP/1. 
0.. Accept: */*.. 
Accept-Language: 
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(16:39:25) 20 65 6E 2D 75 73 0D OA 43 6F 6F 6B 69 65 3 A 20 
(16:39:25) 43 46 49 44 3D 32 38 3B 20 43 46 54 4F 4B 45 4E 
(16:39:25) 3D 36 30 33 35 35 33 31 30 3B 20 52 45 46 43 49 
(16:39:25) 44 3D 3B 20 52 45 46 45 52 53 49 54 45 49 44 3D 
(16:39:25) 31 3B 20 52 45 46 53 43 4F 52 45 3D 30 3B 20 53 
(16:39:25) 55 42 5F 53 45 43 54 49 4F 4E 53 3D 3B 20 3B 20 
(16:39:25) 53 55 42 5F 53 45 43 54 49 4F 4E 53 5F 4C 49 4E 
(16:39:25) 4B 53 3D OD OA 55 73 65 72 2D 41 67 65 6E 74 3 A 
(16:39:25) 20 4D 6F 7A 69 6C 6C 61 2F 34 2E 30 20 28 63 6F 
(16:39:25) 6D 70 61 74 69 62 6C 65 3B 20 4D 53 49 45 20 35 
(16:39:25) 2E 35 3B 20 57 69 6E 64 6F 77 73 20 39 38 29 OD 
(16:39:25) OA 48 6F 73 74 3A 20 77 77 77 2E 69 6B 65 6E 61 
(16:39:25) 2E 63 6F 6D OD OA 50 72 6F 78 79 2D 43 6F 6E 6E 
(16:39:25) 65 63 74 69 6F 6E 3 A 20 4B 65 65 70 2D 41 6C 69 
(16:39:25) 76 65 OD OA OD OA 
(16:39:25) Dumped 0x3ClFA96 done 3 10 
(16:39:25) Browser_Handler(39082d8): Dumping parsed data... 
(16:39:25) Dumping 0x3918BF4 size 282 
(16:39:25) 47 45 54 20 2F 67 72 6F 75 70 2F 62 65 67 69 6E 
(16:39:25) 2E 63 66 6D 20 48 54 54 50 2F 3 1 2E 30 OD OA 43 
(16:39:25) 6F 6F 6B 69 65 3A 20 43 46 49 44 3D 32 38 3B 20 
(16:39:25) 43 46 54 4F 4B 45 4E 3D 36 30 33 35 35 33 31 30 
(16:39:25) 3B 20 52 45 46 43 49 44 3D 3B 20 52 45 46 45 52 
(16:39:25) 53 49 54 45 49 44 3D 31 3B 20 52 45 46 53 43 4F 
(16:39:25) 52 45 3D 30 3B 20 53 55 42 5F 53 45 43 54 49 4F 
(16:39:25) 4E 53 3D 3B 20 53 55 42 5F 53 45 43 54 49 4F 4E 
(16:39:25) 53 5F 4C 49 4E 4B 53 3D OD OA 41 63 63 65 70 74 
(16:39:25) 3A 20 2A 2F 2A OD OA 41 63 63 65 70 74 2D 4C 61 
(16:39:25) 6E 67 75 61 67 65 3 A 20 65 6E 2D 75 73 OD OA 55 
(16:39:25) 73 65 72 2D 41 67 65 6E 74 3 A 20 4D 6F 7A 69 6C 
(16:39:25) 6C 61 2F 34 2E 30 20 28 63 6F 6D 70 61 74 69 62 
(16:39:25) 6C 65 3B 20 4D 53 49 45 20 35 2E 35 3B 20 57 69 
(16:39:25) 6E 64 6F 77 73 20 39 38 29 OD OA 48 6F 73 74 3 A 
(16:39:25) 20 77 77 77 2E 69 6B 65 6E 61 2E 63 6F 6D OD OA 
(16:39:25) 43 6F 6E 6E 65 63 74 69 6F 6E 3A 20 4B 65 65 70 
(16:39:25) 2D 41 6C 69 76 65 OD OA OD OA 
(16:39:25) Dumped 0x391 8D0E done 282 



en-us.. Cookie: 
CFID-28; CFTOKEN 
=60355310; REFCI 
D=; REFERSITEID= 
1;REFSCORE=0;S 
UB_SECTIONS=; ; 
SUB_SECTIONS_LIN 
KS=.. User- Agent: 
Mozilla/4.0 (co 
mpatible; MSIE 5 
.5; Windows 98). 
.Host: www.ikena 
.com.. Proxy-Conn 
ection: Keep-Ali 
ve.... 



GET /group/begin 
xfin HTTP/1. 0..C 
ookie: CFID=28; 
CFTOKEN=60355310 
; REFCID-; REFER 
SITEID=1; REFSCO 
RE=0; SUB_SECTIO 
NS=; SUBJECTION 
S_LINKS=.. Accept 
: */*..Accept-La 
nguage: en-us. .U 
ser-Agent: Mozil 
la/4.0 (compatib 
le; MSIE 5.5; Wi 
ndows 98)..Host: 
www.ikena.com.. 
Connection: Keep 
-Alive.... 



II-7 



WO 01/57738 



PCT/US01/03903 



CLA IM S: 

1 . A group-browsing system comprising: 

a plurality of clients each including a shared web browser; 
a server linked to the shared web browser of each client and configured to monitor the 
transmission of a web site URL request from the shared web browser of one client of the 
group and to direct that request to the shared web browser of other clients in the group; and 

a gatekeeper module configured to first mask the identity of each client 
computer to prevent the web site from retrieving any client's actual identifier and to second 
create the same temporary identifier for each client when any client logs on to the web site so 
that the same web page is displayed for all the clients in the group. 

2. The system of claim 1 in which the group-browsing system is a scalable secure 

system. 

3. The system of claim 1 in which the gatekeeper module resides on each client. 

4. The system of claim 1 in which the identifier is a cookie and the temporary 
identifier is a temporary cookie. 

5. The system of claim 1 in which the gatekeeper further including means for 
deleting the temporary identifier at the end of a group-browsing session to prevent any client 
from returning to the web site identified as another client. 

6. The system of claim 1 in which the gatekeeper further including means for 
generating a warning message when any client logs on to the web site to inform that client 
that the other clients in the group will now be able to access that clients private information. 
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7. The system of claim 1 further including means for tracking the actions of all 
the clients for billing purposes. 

8. The system of claim 1 further including client software configured to detect 
the end of a group-browsing session and, in response, to direct a client's secure browser to 
transmit the web site URL to allow the client to return to the previously accessed web site. 

9. A gatekeeper system for group-browsing, the system comprising: 

means for masking the identity of each group member to prevent a web site 
from retrieving any group member's actual identifier; and 

means for creating a temporary identifier for each member of the group so that 
the same web page is displayed for all group members. 

10. The system of claim 9 in which the identifier is a cookie and the temporary 
identifier is a temporary cookie. 

1 1 . The system of claim 9 further including means for deleting the temporary 
identifier at the end of the group-browsing session. 

12. A group-browsing system comprising: 

a shared web browser for each client of a group of clients; and 
a gatekeeper module configured: 

first to mask the identity of each group member using a shared web browser to 
prevent a web site from retrieving any group member's actual identifier, 

second to create a temporary identifier for each member of the group so that 
the same web page is displayed for all group members, 

third to automatically establish a non-shared browser when a client enters a 

secure server, 
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fourth to automatically transfer the temporary identifier to the non-shared 

browser, and 

fifth to delete the temporary identifier at the end of the group-browsing session 
to prevent any client from returning to the web site as another client. 

13. The system of claim 12 in which the identifier is a cookie, the temporary 
identifier is a temporary cookie, and the secure server is a checkout server. 

14. A group-browsing method for a plurality of clients each including a shared 
web browser, the method comprising: 

linking a server to the shared web browser of each client; 

using the server to monitor the transmission of a web site URL request from 
the shared web browser of one client of the group and to direct the request to the shared web 
browser of other clients in the group; 

masking the identity of each client computer to prevent the web site from 
retrieving any client's actual identifier; and 

creating the same temporary identifier for each client when any client logs on 
to the web site so that the same web page is displayed for all the clients in the group. 

15. The method of claim 14 in which the identifier is a cookie and the temporary 
identifier is a temporary cookie. 

16. The method of claim 14 further including deleting the temporary identifier at 
the end of a group-browsing session to prevent any client from returning to the web site 
identified as another client. 

17. The method of claim 14 in which the step of configuring the gatekeeper further 
including generating a warning message when any client logs on to the web site to inform that 
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client that the other clients in the group will now be able to access that client's private 
information. 

18. The method of claim 14 further including tracking the actions of all the clients 
for billing purposes. 

19. The method of claim 14 further including configuring a client software to 
detect the end of a group-browsing session and, in response, directing a client's secure 
browser to transmit the web site URL to allow the client to return to the previously accessed 
web site. 

20. A group-browsing method comprising: 

masking the identity of each group member to prevent a web site from 
retrieving any group member's actual identifier; and 

creating a temporary identifier for each member of the group so that the same 
web page is displayed for all group members. 

2 1 . The method of claim 20 in which the identifier is a cookie and the temporary 
identifier is a temporary cookie. 

22. The method of claim 20 further including deleting the temporary identifier at 
the end of the group-browsing session. 

23. A group-browsing method comprising: 

masking the identity of each group member using a shared web browser to 
prevent a web site from retrieving any group member's actual identifier; 

creating a temporary identifier for each member of the group so that the same 
web page is displayed for all group members; 

establishing a non-shared browser when a client enters a secure server; 
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transferring the temporary identifier to the non-shared browser; and 
deleting the temporary identifier at the end of the group-browsing session to 
prevent any client from returning to the web site as another client. 

24. The method of claim 23 in which the identifier is a cookie, the temporary 
identifier is a temporary cookie, and the secure server is a checkout server. 



WO 01/57738 



PCT7US01/03903 




WO 01/57738 



PCT/US01/03903 




WO 01/57738 PCT/US01/03903 



3/26 




WO 01/57738 



PCT/US01/03903 



CO 

CO 

^3 



o 



2 



O 



w O 

J-H O 



OD3U 





o 



WO 01/57738 



PCT7US01/03903 




WO 01/57738 



PCT/US01/03903 




o 




o 



WO 01/57738 



PCT/US01/03903 



V26 




WO 01/57738 



PCT/US01/03903 



CD 

O 



g 

o 



> 
i- 

o 



o 
o 
O 

cd 
C 



en 



o 






J— 

o o S 






H C O 

O 0Q U 






♦<-)! 




E3H 



o 



WO 01/57738 PCT/US01/03903 




WO 01/57738 



PCT/US01/03903 




WO 01/57738 



o 

CO 




PCTYUS01/03903 



WO 01/57738 PCTAJS01/03903 





WO 01/57738 



PCT/US01/03903 



'VAb 



WO 01/57738 



PCT/US01/03903 




O 

m 



WO 01/57738 



session termination 



PO7US01/03903 



void _stdcall ClkenaCobrowseHandler: :on_terminate_session ( long 
session_id, VARIANT_BOOL b_confirm ) 

{ 

if ( b_confirm != VARIANT_FALSE ) 
{ 

ClkenaConf irmDialog cnf_dlg ( IK_INTER_STRING ( IDS_SESSION_TE 
RMINATE_CONFIRM) ); 

if( cnf__dlg . DoModal ( m_hwnd_parent ) == IDOK ) 
{ 

if ( m_p_ikena_core ! = 0 ) 
{ 

CComPtr<I IkenaPluginHost> p_plugin_hos t ; 
m_p__ikena_core->get_plugin_host ( &p_plugin_host ) ; 
if ( p_plugin_host != 0 ) 

{ 

m_b_conf irm_terminate = true; 
p_plugin_host->leave_session ( session_id ) ; 

} 

} 

} 

} 

else 

{ 

IKENANOTIFYHANDLER->show_notify_message ( IK_INTER_STRING (ID 
S_SESSIONJTERMINATE_NOTIFY) ); 
} 



void _stdcall ClkenaCobrowseHandler: :on_session_terminate ( long 
session_id ) 

{ 

if ( m_p_chat_dlg ) 
{ " ~ 

m_p_chat_dlg->end (IDCANCEL) ; 

m_p_chat_dlg = 0 ; 

} 

if ( !m_b_conf irm_terminate ) 
{ 

IKENANOTIFYHANDLER->show_notif y_mes s age_modal ( IDS_SESSION_ 
T E RM I NAT E_NOT I FY ); 

m_b__confirm_terminate = false; 

} 



Fig. 1 IB 
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